Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft
File: HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft (raw, json)
Hash identifier: JW1oAHD49tlVKfWtvG10nKfS6rtUfBWdnDdLatSHgeU=
Subject key identifier: 73:A3:A3:E3:13:C3:83:0B:2F:8F:19:43:F1:82:13:39:E7:5E:01:53
Authority key identifier: 1C:39:0B:FF:65:DC:ED:CA:81:3D:7A:10:D7:EC:32:8C:2F:6E:AC:34
Certificate issuer: /CN=1c390bff65dcedca813d7a10d7ec328c2f6eac34
Certificate serial: 019A34C705FFF1DEC0EF3053032A2FA36B4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft
Manifest number: 1708
Signing time: Thu 30 Oct 2025 11:00:49 +0000
Manifest this update: Thu 30 Oct 2025 11:00:49 +0000
Manifest next update: Fri 31 Oct 2025 11:00:49 +0000
Files and hashes: 1: HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.crl (hash: epRLBMtS+IuTCACQc2gMV8NwKBiq45u1DCzQQC7CKpc=)
2: HKyKcuG2QNZXVCZbzlsSYd8S3kw.roa (hash: WsComY/xpr7CRKjl1OS19nvkdUYgY57xLKmt+FoyLxs=)
3: NMYTYXjVSSW_zjS5UcL1_MJYMhw.roa (hash: sb8TB9OQXYjgHET+s0jEt1SW4MRtm0F3nj4wUyz73j8=)
4: OL6AoyvltIWrfared4b30q9zkxI.roa (hash: BCZJFaW2H8wcaghHXjKzyZLLD5xoj/h4op/UrSZpM4s=)
5: cdvkytGTuhzfI_n3jlQrgir1LVg.roa (hash: bDSSCJ1WplO8Ib0UIaI2qA5CZAt1v6VMlLCWW3FIaSk=)
6: jLAxUa8xvZ_xtGFLN3MZzH02ngY.roa (hash: 2KcY9b/rNpgICtwXDDn50o8m8wTGL/9zVFvIOuzYcZI=)
7: jwz6PrQFhFvB8Ouuwat3y2nONuA.roa (hash: TxTry85XsPky+PSHHeTZJCkAX90hbYBwkf2e2x38QSo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 31 Oct 2025 11:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:34:c7:05:ff:f1:de:c0:ef:30:53:03:2a:2f:a3:6b:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c390bff65dcedca813d7a10d7ec328c2f6eac34
Validity
Not Before: Oct 30 11:00:49 2025 GMT
Not After : Oct 31 11:00:49 2025 GMT
Subject: CN=73a3a3e313c3830b2f8f1943f1821339e75e0153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b0:aa:c2:88:98:b1:62:99:09:d0:22:3c:94:
64:ac:d9:87:9f:d5:a5:d7:f7:02:e1:d1:eb:16:7d:
72:ad:4d:39:c1:f8:7e:ea:ef:85:af:c4:44:15:a0:
cd:aa:3d:02:70:8d:8e:09:5c:41:fa:03:69:07:6a:
7b:18:3d:fd:25:7f:5f:d0:ae:97:7d:e5:93:d6:70:
ed:3f:d3:57:b6:7a:4b:93:36:4d:1f:6e:b6:ea:ae:
b0:4f:01:be:82:c0:fc:a2:3c:c7:04:aa:77:d8:01:
8c:40:b5:f9:78:51:7a:cf:8f:3c:cf:61:1b:32:75:
5e:85:26:34:08:7b:70:60:c0:02:3b:20:ab:8c:2c:
a0:e1:1c:b1:99:9f:11:57:4e:ac:32:3a:97:2f:45:
9c:e4:ee:bd:1e:d0:e5:a9:04:b0:a2:cd:94:7c:a8:
2d:1d:b8:77:d0:ef:ea:e6:00:e0:5d:a3:d5:cc:45:
88:17:a4:1e:a8:82:0c:2b:52:9b:df:4e:b8:cf:5e:
67:f4:bb:06:4d:ed:2c:88:e6:f7:f9:24:42:4d:7d:
27:7c:44:6d:8c:ca:a8:1e:3a:1a:57:df:3f:68:8b:
9f:ad:58:71:d9:80:2d:53:e5:c7:28:6d:24:4d:13:
a2:c9:70:4c:03:d5:76:9e:35:33:5e:33:f6:0f:c3:
52:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:A3:A3:E3:13:C3:83:0B:2F:8F:19:43:F1:82:13:39:E7:5E:01:53
X509v3 Authority Key Identifier:
keyid:1C:39:0B:FF:65:DC:ED:CA:81:3D:7A:10:D7:EC:32:8C:2F:6E:AC:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:1c:0b:3e:b0:48:21:f6:bb:91:65:dd:65:2f:a5:54:04:88:
b2:17:51:4d:63:f5:0f:9b:e8:65:50:de:75:e4:3d:ab:10:22:
15:03:46:30:0c:67:89:d3:db:60:23:09:6d:da:ee:57:ae:39:
4d:3d:ec:cb:49:34:fe:fa:eb:1e:bb:fa:2e:aa:c9:eb:4e:2e:
ec:89:8c:b8:1b:52:56:6e:f5:b2:22:c9:62:f9:ea:78:87:03:
0a:3a:5b:dd:c9:ff:92:46:6a:32:92:c7:f1:89:e0:b5:75:62:
92:35:20:00:8d:e0:d9:5c:1c:57:4d:a5:8d:f8:b2:57:a9:0f:
bd:42:4c:9c:6c:ba:3c:fa:2a:7b:1e:7c:ee:a1:7b:86:b4:42:
70:c5:39:a6:4c:92:ae:05:be:c7:4e:10:35:fe:da:7a:21:e6:
89:2a:85:01:20:30:5d:15:cd:29:93:ee:4f:30:22:22:95:7a:
d3:a2:36:f9:b3:d3:0c:73:91:2b:62:aa:16:0d:b8:68:2d:21:
ed:6a:87:30:8c:e9:e7:c6:36:de:b6:e7:0a:b8:b5:e3:76:c0:
6d:9b:61:ff:e9:49:40:6a:11:a5:2e:52:d9:3d:ae:94:c4:4e:
ae:ef:27:84:7a:60:5f:11:8b:f7:11:27:d7:1a:89:d2:90:0f:
2d:15:31:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 30 20:55:53 2025 by rpki-client